$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa File: 3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa (raw, json) Hash identifier: FE7yZMTislKGWcbY4qG0beL79uHJRAECT1HhYr/vMVw= Subject key identifier: BF:FE:1A:7C:CB:CF:5C:B6:2C:1D:69:66:5F:63:BA:B2:51:EA:69:85 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 79A31E37702F3A236A7E8AEAFED9A4C9A63CAEB1 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:10 +0000 ROA not before: Sun 03 May 2026 03:00:10 +0000 ROA not after: Sun 02 May 2027 03:05:10 +0000 asID: 38156 IP address blocks: 203.190.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:a3:1e:37:70:2f:3a:23:6a:7e:8a:ea:fe:d9:a4:c9:a6:3c:ae:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:10 2026 GMT Not After : May 2 03:05:10 2027 GMT Subject: CN=BFFE1A7CCBCF5CB62C1D69665F63BAB251EA6985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ab:25:96:6c:6c:77:05:6c:4a:e1:61:ed:f3: 1d:be:bf:a8:5a:f5:f2:01:c7:dc:98:db:37:c9:21: 29:9e:9b:25:70:9b:4a:b6:cd:9d:74:a1:3c:a3:49: ee:7d:b8:75:a8:e9:3d:df:f6:e2:7e:4f:6d:9b:76: 5a:43:87:24:fb:3d:45:a3:f3:72:f3:99:3a:35:17: f4:b9:41:2d:a2:4e:14:0c:c8:de:c1:f8:c6:94:eb: 1d:bb:0d:73:62:d0:93:e8:45:8e:cc:17:1c:81:ef: 26:14:7c:e8:6b:f4:f0:1f:b1:26:41:68:76:c5:5a: 7f:b3:4f:3e:d0:47:7e:41:68:1b:79:b0:a5:21:66: de:ac:45:fa:f3:2e:cd:0b:12:c1:ca:46:a4:d6:c7: b3:2e:51:7b:bb:79:e8:76:c6:37:3a:80:77:32:eb: 2b:fc:e8:21:9c:80:b7:01:7a:10:18:86:96:f0:8b: f1:c2:e6:e4:99:e8:c6:01:65:c6:2c:bf:0f:a7:77: 1a:8f:0c:cc:42:60:fd:96:07:4d:ac:c9:1a:3c:28: 52:ca:8f:3f:80:24:c9:e8:9c:41:c6:9f:b3:85:05: 94:75:07:9a:9a:70:b8:f6:82:81:ca:64:12:6b:f0: ec:e2:a3:fe:c8:45:0f:a8:bb:9c:7c:15:fa:14:f5: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:FE:1A:7C:CB:CF:5C:B6:2C:1D:69:66:5F:63:BA:B2:51:EA:69:85 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.112.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:63:ea:1b:59:7f:93:a3:70:93:1c:1a:b4:e2:24:ba:8c:d3: 92:7f:03:6d:26:72:d8:51:ed:f1:b5:4c:18:59:7b:64:7c:01: a0:16:67:d2:e7:ea:99:4b:a6:f4:cd:7a:47:42:94:fa:5f:41: 98:be:14:b7:f9:1e:f5:e6:04:c0:3f:dc:7e:de:bc:90:3a:33: dc:f2:a9:38:f2:20:06:a6:c1:1d:61:32:ab:65:56:73:bd:b3: ca:1c:07:b6:e5:fb:bb:30:eb:82:0c:35:bc:a2:3a:de:98:3d: 48:a4:ba:19:65:21:08:37:52:86:1e:4f:01:72:05:94:8e:5c: ae:7a:f4:97:b9:58:1d:bb:79:c9:85:5a:9e:84:62:c3:87:71: f5:15:c6:2a:d0:0b:1f:0d:4a:24:a5:ff:4a:12:bb:06:7a:7a: 38:b2:53:d3:81:62:49:1f:ad:2f:27:d7:be:24:8d:08:d7:43: 65:fc:16:aa:31:13:39:64:bc:1d:b8:a0:40:eb:78:b1:a6:00: 71:8b:04:6d:46:eb:38:b1:46:a9:47:b9:6a:35:f1:a6:41:0c: 7a:c2:e0:90:c2:7f:a1:0c:ba:85:6d:32:01:a0:4a:11:42:9e: df:86:97:0c:b9:bd:5b:8f:11:b2:4e:e0:f4:73:96:69:88:5e: b8:53:27:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeaMeN3AvOiNqforq/tmkyaY8rrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTBaFw0yNzA1MDIwMzA1MTBaMDMxMTAvBgNV BAMTKEJGRkUxQTdDQ0JDRjVDQjYyQzFENjk2NjVGNjNCQUIyNTFFQTY5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqqyWWbGx3BWxK4WHt8x2+v6ha 9fIBx9yY2zfJISmemyVwm0q2zZ10oTyjSe59uHWo6T3f9uJ+T22bdlpDhyT7PUWj 83LzmTo1F/S5QS2iThQMyN7B+MaU6x27DXNi0JPoRY7MFxyB7yYUfOhr9PAfsSZB aHbFWn+zTz7QR35BaBt5sKUhZt6sRfrzLs0LEsHKRqTWx7MuUXu7eeh2xjc6gHcy 6yv86CGcgLcBehAYhpbwi/HC5uSZ6MYBZcYsvw+ndxqPDMxCYP2WB02syRo8KFLK jz+AJMnonEHGn7OFBZR1B5qacLj2goHKZBJr8Ozio/7IRQ+ou5x8FfoU9XwVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUv/4afMvPXLYsHWlmX2O6slHqaYUwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy75wMA0GCSqG SIb3DQEBCwUAA4IBAQB6Y+obWX+To3CTHBq04iS6jNOSfwNtJnLYUe3xtUwYWXtk fAGgFmfS5+qZS6b0zXpHQpT6X0GYvhS3+R715gTAP9x+3ryQOjPc8qk48iAGpsEd YTKrZVZzvbPKHAe25fu7MOuCDDW8ojremD1IpLoZZSEIN1KGHk8BcgWUjlyuevSX uVgdu3nJhVqehGLDh3H1FcYq0AsfDUokpf9KErsGeno4slPTgWJJH60vJ9e+JI0I 10Nl/BaqMRM5ZLwduKBA63ixpgBxiwRtRus4sUapR7lqNfGmQQx6wuCQwn+hDLqF bTIBoEoRQp7fhpcMub1bjxGyTuD0c5ZpiF64UyfD -----END CERTIFICATE-----Generated at Wed May 13 03:55:26 2026 by rpki-client